安全措施延迟对信息安全风险的影响研究-计算机工程与应用.pdf

118 2017 ，53（19） Computer Engineering and Applications 计算机工程与应用 安全措施延迟对信息安全风险的影响研究 用 陈 宇，王亚弟，王晋东，李 涛 应 CHEN Yu, WANG Yadi, WANG Jindong, LI Tao 与 信息工程大学 密码工程学院，郑州 450000 程 Institute of Cipher Engineering, Information Engineering University, Zhengzhou 450004, China g 工 r o CHEN Yu, WANG Yadi, WANG Jindong, et al. Study of influence on information security risks by delays of security . j measures. Computer Engineering and Applications, 2017, 53 （19）：118-123. 机 a 算 e Abstract: The existing models of risk assessment are based on statistical approaches overwhelmingly, and guided by static c . models and don ’t take into account the dynamic nature of interactions in cyberspace. Known tools don ’t allow to use delay 计 w in taking protective measures in process of risk analysis and assessment. To solve the problem, this paper analyzes the main causes of delay in taking measures to protect the information system, and proposes an information security w risk assessment dynamic model which takes into account the delay in taking protective measures. The proposed model w allows to create more flexible tools of evaluating the relative value of information security risk both on the basis of statistical data and the qualitative assessments made by using nonlinear models with delay. Further more, this paper also uses the proposed model to stimulate the impact on information security risk by the delay of the security measures. The simulation results s